REMARKS/ARGUMENTS 



The amended listing of claims and the following arguments are presented generally to 
impart precision to the claims, by particularly pointing out and distinctly claiming the subject 
matter. The pending claims are supported by the specification. No new matter is added. 

Claims 1 1 and 36 were objected to for informalities. The current amendment 
removes the informalities. 

Claim 16 was rejected under 35 U.S.C. 1 12 for using the term "the received signal". 
The current amendment eliminates the use of such a term fi*om claim 16. 

Claims 1-13, 16-17, 19-23 were rejected under 35 U.S.C. 102(b) as being anticipated 
by U.S. Patent No. 5,953,424 (hereinafter "Vogelesang"). Claims 14-15 and 18 were 
rejected under 35 U.S.C. 103(a) as being unpatentable over Vogelesang. Claims 24-41 were 
rejected under 35 U.S.C. 103(a) as being unpatentable over Vogelesang in view of U.S. 
Patent No. 5,666,415 (hereinafter "Kaufinan"). 

Applicant respectfiiUy submits that the currently pending claims are patentable over 
the cited references. 

For example, claim 1 recites: 

1 . (currently amended) A cryptographic method, including: 
receiving at a first entity a second public key Ma; 
generating a first session key Kb based on the second public key Ma; 
generating a first random nonce Nb; 

encrypting the first random nonce Nb using at least a first password Pr and a 
first public key Mr to obtain an encrypted random nonce; 

transmitting the encrypted random nonce firom the first entity; 

receiving a response to the encrypted random nonce; and 

authenticating through determining whether the response includes a correct 
modification of the first random nonce. 
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In Vogelesang, the public signal Y is received to generate the secrete S (Col. 16, lines 39-40, 
Vogelesang); and the private signal L is encrypted according to the secrete S (Col. 16, lines 
64-65, Vogelesang). In Vogelesang, the private signal L is not encrypted using a password 
(e.g., KJ) and a public key (e.g., X). Thus, ''encrypting the first random nonce Nb using at 
least a first password Pg and a first public key Mb to obtain an encrypted random nonce" is 
absent fi-om Vogelesang. At least for this reason, Vogelesang does not anticipate claim 1 . 
Further, for example, claim 2 recites: 

2. (currently amended) The method of claim 1 wherein said encrypting the first 
random nonce Nb includes: 

generating a first secrete Sg^from at least the first password Pr and the first 

public key Mr : and 
encrypting the first random nonce Nb using at least the first secrete Sr . 

In Vogelesang, the first participant encrypts the private signal L according to the secrete S 
(Col. 16, lines 64-65, Vogelesang). The first participant of Vogelesang generates the secrete 
S from the public signal Y that is received from the second participant. However, the first 
participant of Vogelesang does not generate secrete from a password and another public 
signal (e.g., X, but not Y) to encrypt the private signal L. The secrete S of Vogelesang, 
which is considered as the session key and generated from Y (and KJ), is clearly different 
from "the first secrete Sr " recited in claim 2. Thus, Vogelesang does not show "generating a 
first secrete Sb from at least the first password Pb and the first public key Mb' and 
"encrypting the first random nonce Nb using at least the first secrete Sb". Therefore, 
Vogelesang does not anticipate claim 2. 

Further, for example, claim 16 recites: 
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16. (currently amended) The method of claim 2 wherein said transmitting the 
encrypted random nonce from the first entity includes : 
transmitting to a second entity the first pubhc key Mr to establish the session 

key at the second entity : and 
wherein said authenticating includes: 

decrypting the response using the first session key Kb to generate a 

first decrypted result; and 
decrypting the first decrypted result using the first secret Sb. 

In Vogelesang, the private signal L and the value T are encrypted according to the secrete S 
and transmitted from the first participant to the second participant. It is clear that in 
Vogelesang the transmission of the private signal L in the encrypted form does not include 
the transmission of the public signal (e.g., X) for the establishment of the session key (e.g., S 
at the second participant). Since the generation of the value T of Vogelesang requires the 
decryption of Zq using S, it is clear that the second participants is expected to have the 
secrete S before the private signal L is transmitted. Further, Thus, Vogelesang does not 
generate secrete using a public key that is transmitted to the second participant to establish 
the session key. Vogelesang does not anticipate claim 16. 
Further, for example, claim 8 recites: 

8. (currently amended) The method of claim 2 wherein said generating the first 
secrete Ss includes: 

combining the second public key Ma and the first public key Mb with the first 

password Pb to produce a first result, and 
hashing the first result with a secure hash. 

In Vogelesang, there is no feature of "generating the first secrete Sb". Further, there is no 
feature of "combining the second public key Ma and the first public key Mr with the first 
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password Pb to produce a first result" in Vogelesang. Thus, Vogelesang does not anticipate 
claim 8. 

Further, for example, claim 15 recites: 

15. (currently amended) The method of claim 14, wherein superencrypting the 
first random nonce Nb includes: 

encrypting the first random nonce Nb with the first secret Sg^to produce the 

first encrypted result : and 
encrypting the first encrypted result using the first session key Kr . 

In Vogelesang, there is no feature of "generating the first secrete Sb". Thus, in Vogelesang 
there is no "first encrypted result" that results firom " encrypting the first random nonce Nb 
with the first secret Sr ". In Vogelesang, the private signal L is only encrypted using the 
secrete S, which is considered as a session key. The Office Action asserted that "the use of 
superencryption is not considered a novel feature". Applicant respectfully disagrees. The 
Office Action did not show any evidence pointing a particular way of superencrypting as 
recited in the pending claims. Thus, claim 15 is neither anticipated by Vogelesang nor 
obvious in view of Vogelesang. 

Further, for example, claim 17 recites: 

17. (currently amended) The method of claim 2, wherein the response includes a 
combination of a second random nonce N a and a modification of the first 
random nonce ; and wherein the method further includes: 
extracting the second random nonce Na fi^om the response; 
modifying the second random nonce Na to obtain a modified second random 
nonce; 

encrypting the modified second random nonce using the first session key Kr 

and the first secret Sr to obtain an encrypted package : and 
transmitting the encrypted package fi-om the first entity. 
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In Vogelesang, the response to the private signal L is the value M, modified at the second 
participant and encrypted using the secrete S. Thus, "second random nonce Na" is absent 
from the response to the private signal L of Vogelesang. Furthermore, the authentication 
process of Vogelesang ends when the correctness of M is verified. In Vogelesang (Col. 16, 
line 26 - Col. 17, line 38), the first participant is authenticated when the correctness of the 
value T is verified at the second participant (Col 17, Unes 1-19); and the second participant 
is authenticated when the correctness of the value M is verified at the first participant (Col. 
17, lines 28-30). Vogelesang does not have the fiirther operations of "extracting the second 
random nonce Na . . "modifying the second random nonce Na . . "encrypting the 
modified second random nonce . . .", and_"transmitting the encrypted package . . Thus, 
Vogelesang does not anticipate claim 17. 

Further, for example, claim 1 8 recites: 

1 8. (currently amended) The method of claim 1 7 wherein said encrypting the 
modified second random nonce includes: 
generating a string of random bits Ib; 

encrvpting^a combination of the string of random bits Ir and the modified 

second random nonce using the first secret Sb to generate a first result; 
and 

encrypting the first result using the first session key Kb. 

Vogelesang does not have the further operation of "encrypting the modified second random 
nonce . . .", since the authentication process of Vogelesang ends when the correctness of M, 
as a response to the private signal L is verified. Furthermore, there is no "encrypting a 
combination of the string of random bits Ib and the modified second random nonce using the 
first secret Sr to generate a first result " and "encrypting the first result using the first session 
key Kb". Thus, Vogelesang does not anticipate claim 17. 
In another aspect, for example, claim 24 recites: 
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24. (currently amended) A cryptographic method, comprising: 

receiving at a first entity a second pubhc key Ma and an encrypted second 
random number; 

generating a first session key Kb based on the second pubhc key Ma; 
decrypting, using at least a first password Pr and the second pubhc key Ma , to 

retrieve a second random number Na fi'om the encrypted second 

random number; 

modifying the second random number Na to obtain a modified second random 
number; 

encrypting the modified second random number using at least the first 

password Pr and a first public key Mr to obtain an encrypted random 
package; and 

transmitting the encrypted random package firom the first entity. 

Applicant respectfiiUy submits that a person skilled in the art would not reach a method as 
recited in claim 24 fi-om the description of Vogelesang and Kaufinan. 

The Office Action asserted that "Kaufinan describes an authentication similar to . 
Vogelesang' s in which a first entity, server, initially receives a password encrypted nonce." 
Applicant respectfully disagrees. 

According to Kaufinan (Col. 3, lines 51-59), the server receives a first argument and a 
second argument. The first argument of Kaufman is a password of the user. The password is 
encrypted using a first one-way cryptographic transformation function for the first argument. 
The second argument includes an encrypted version of a combination of an encrypted version 
of the password and a nonce. According to Kaufman (Col. 4, lines 14-18), the second 
argument includes the nonce to defeat the attempt of an eavesdropper to replay previously 
recorded arguments. 

From this description of Kaufinan, a person skilled in the art understands that 
Kaufinan and Vogelesang have dramatically different methods for authentication. In 
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Kaufinan, the passwords of the users are transmitted over the network, in an encrypted form, 
for authentication, hi Vogelesang, no password is transmitted for authentication. In 
Vogelesang, the secrete information used for authentication (e.g., K and J) is not transmitted. 
The methods of Kaufman and Vogelesang are dramatically different. It is not apparent how 
the methods of Kaufinan and Vogelesang might be combined and implemented with a 
reasonable expectable of success. 

The Office Action asserted that "The password from a database is then used to obtain 
the random number." Applicant respectfully requests the examiner point out the particular 
description of either Kaufinan or Vogelesang which supports such an assertion. 

The Office Action relied upon Vogelesang (Col. 13, lines 41-67; Col. 14, lines 1-4) 
for a description of an authentication scheme which involves two nonces (L and V). 
However, applicant respectfiiUy submits that Vogelesang describes the method of Col. 13, 
lines 41 - Col. 14, lines 4 to show the problems in this method. See, for example. Col. 14, 
lines 5-31. Thus, from the description of Vogelesang, a person skilled in the art understands 
that the method of Col. 13, lines 41 - Col. 14, lines 4 is a method separate from the method 
of Col. 16, lines 26 - Col. 17, lines 37. The method of Col. 16, lines 26 - Col. 17, lines 37 is 
proposed by Vogelesang to replace the method of Col. 13, lines 41 - Col. 14, lines 4, because 
of the problems as described in Col. 14, lines 5-31, Vogelesang. 

Thus, applicant respectfiilly submits that it is improper to mix and match the elements 
of the method of Col. 13, lines 41 - Col. 14, lines 4 in Vogelesang with the method of Col. 
16, lines 26 - Col. 17, lines 37 of Vogelesang. Here, one method is proposed to overcome 
the problems of another. It is not clearly why one would mix and match the methods. 

Further, the combination of Vogelesang and Kaufinan suggested in the Office Action 
is not proper. Kaufinan does not show a random number encrypted by a password. Further, 
for the combination of Vogelesang and Kaufinan suggested in the Office Action, the Office 
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Action did not point out a complete consistent method, which might be implementation with 
reasonable expectable of success. 

Furthemiore, neither Vogelesang nor Kaufman suggests "decrypting, using at least a 
first password Pb and the second public key Ma, to retrieve a second random number Na 
from the encrypted second random number" and "encrypting the modified second random 
number using at least the first password Pb and a first public key Mb to obtain an encrypted 
random package". 

Thus, at least for the above reasons, claim 24 is patentable over Vogelesang and 
Kaufman. 

Further, for example, claims 25 and 34 recite additional limitations not found in 
Vogelesang and Kaufinan. 

25. (currently amended) The method of claim 24, wherein said decrypting 
includes: 

decrypting the encrypted second random number using the first session key 

Kb to generate a first decrypted result; and 
decrypting the first decrypted result using at least the first password Pr and 

the second public key Ma . 

34. (currently amended) The method of claim 24, further including: 
generating a first random number Nb; and 

wherein said encrypting the modified second random number includes: 
encrypting a combination of the first random number Nr and the 
modified second random number . 

The remaining claims depend from at least one of the claims discussed above, or 
recite similar limitations discussed above, and therefore include at least some of the 



04860P2441 



36 - 



distinguishing claim limitations as discussed above. As a result, the remaining claims are 



also patentable. 



Authorization is hereby given to charge our Deposit Account No. 02-2666 for any 
charges that may be due. Furthermore, if a further extension is required. Applicant hereby 



requests such extension. 



Respectfully submitted, 

BLAKELY, SOKOLOFF, TAYLOR & ZAFMAN 
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